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Sophos Group 



Utimaco Safeware AG 



Sophos PLC 



Lawful Interception 
Data Retention 




Strong Encryption and 
Digital Signatures 

Hardware Security 




Endpoint Protection 
Information Security 

IT Governance and 
Compliance 



^1 



© Utimaco Safeware AG 



3 






Sophos Group 

Company Facts 



Utimaco Safeware AG 



■ Headquarters in Oberursel and Aachen, Germany 

■ 163 employees 

■ € 37.7 million revenues (fiscal year 10/11) 




© Utimaco Safeware AG 



utimaco 

a member of the Sophos Group 





Sophos PLC 



■ Headquarters in Oxford, UK and 
Burlington, MA, USA 

■ 1 ,800 employees 

■ $ 340 million revenues (fiscal year 10/11) 




Sophos is a world leader 
in IT security and control 
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Utimaco LIMS 

Competence in Lawful Interception 



♦ 

♦ 

♦ 

♦ 

♦ 

♦ 

♦ 



Utimaco has been providing LI solutions since 1994 
Market leader in Germany 

Worldwide operations: more than 180 installations in 60 countries 

Lawful Interception and Data Retention Systems 
for 10 thousands to millions of subscribers 

Strong partnerships with leading telecom infrastructure vendors 

Compliant to international LI standards of ETSI, 3GPP, ANSI/ATIS, 
CableLabs and active member of ETSI TC LI 

Conform to numerous national telecommunication laws 
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Utimaco LIMS 

Lawful Interception of Telecommunications Services 

♦ Utimaco LIMS™ - Proven Solution for 

► Mobile network operators 

► Fixed network operators 
Internet service providers 



Law 

Agency 
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Utimaco DRS 

Data Retention vs. Lawful Interception 




Data Retention 

Call Detail Records 
Subscriber Data 



w 



Future 



V 

Lawful Interception 

Call Detail Records 
Call Content 



♦ Complementary means to assist law enforcement and anti-terrorism 

♦ Technically many similarities 
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Data Retention - Lawful Interception 

Overlaps 



♦ Archival 


♦ Legal obligation 
of service providers 


♦ Realtime 


of connection 


♦ Handover interfaces 


monitoring of 


records and 


to law enforcement 


communication 


subsriber data 


agencies 


♦ Connections 




♦ Network interfaces 


records and 




♦ Administration 


content 




of warrants 


♦ No long-term 




♦ Access protection 


storage 




♦ Data security 

♦ Accounting and auditing 

♦ Applies to voice 
& data 
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Data Preservation vs. Data Retention 

♦ Data Preservation (aka. quick freeze ) 

Is applied only from the moment a suspicion arises 
A Preservation order is issued with respect to a particular person 

♦ Data Retention 

Is key to investigate events prior to the moment when a criminal 
suspicion arises 

► Guarantees availability of historical data linked to current investigation 
case 

Gathers all relevant communication records, suspicious or not 
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Utimaco DRS 

A carrier grade data retention solution 

♦ Purpose-built system for compliance with the EU DR directive 
and with national telecom laws for data retention 

♦ Key functions 

Collects communications data (CDR, IPDR) and subscriber data from 
any telecommunications network 

► Retains large amounts of data in a powerful and secure data warehouse 

Provides very fast search and analytics in billions of data records 

Automates request processing and delivers data to authorized agencies 
by fax, 

e-mail, or secure IP interfaces 
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Utimaco DRS 

System overview 



♦ 

♦ 



♦ 

♦ 



Central Management of all requests for retained data 

Benefit: Easy of use, high automation, low OPEX, strong security 

Modularity and scalability 

Benefit: Cost-effective integration in existing networks of any size with 
various communication services, low CAPEX 

High performance for load and search 

Benefit: Suitable for large networks with several billions of CDRs per day 

Fine granular user and security management, multi-tenant capability 

Benefit: Strong data protection as required by law, suitable for 
multi-provider networks and hosted service models 
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EU Directive 2006/24/EC 

“DR Directive” 



♦ The Directive aims at harmonizing the provisions of the member states concerning 
obligations incumbent on the providers of telecommunications services with 
respect to data retention 

♦ The objective is to ensure the availability of subscriber traffic related data (CDRs) 
and subscriber data for the purpose of investigating, detecting and prosecuting 
serious crime 

♦ Telco systems previously support law enforcement to varying degrees 

♦ Entered into force on 3rd May, 2006 

♦ Member states to enact the EU Directive by 1 5th September 2007 

♦ Internet access, Internet telephony and e-mail, optional deadline of March 09 

♦ Obligation to retain data 

► Telcos, ISPs and anyone providing publicly available telecom services 

♦ Retention period: 6 to 24 months 

♦ What’s to be retained 

Essential subscriber traffic information regarding mobile, internet and fixed 
telephony, internet access and e-mails and subscriber data 

♦ Accessibility 

Upon request to competent authority “without undue delay” 
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Data to be retained 

According to the EU Directive 



Subscriber Data 




Telephony 




Internet 




E-Mail 


• Name 

• Address 

• Date&time of service 
activation 




• A/B/C phone number 

• A/B/C IMSI 

• A/B/C IMEI 

• Date&time of begin 
and end of call 

• Service type (call, 
data, SMS, ...) 

• VoIP: IP address of 
caller 

• Mobile: location at 
begin and end of call 




• Subscriber ID 

• Subscriber IP 
address 

• Date&time of begin 
and end of Internet 
connection 

• Calling no. or circuit 
ID 




• Email address 
sender and 
receiver(s) 

• Date&time of send, 
receive, store 

• Subscriber ID 
(user account) 

• Subscriber IP 
address 



• Some countries require additional data to be retained. E.g. Denmark: web session, ... 
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Adoption of the EU DR Directive in Europe 




♦ Austria has implemented the DRD in national law by April 2011 . Operators must comply by 
April 2012. 

♦ Greece has implemented the DRD in national law by Feb 2011 . Operators must comply in 
2012. 

♦ Cyprus has declared the law “unconstitutional” in Feb 2011 . 
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European Directive revision - why? 

♦ Law Enforcement Agencies 

Need to be equipped with the tools needed to serve the criminal 
justice system 

♦ Telecommunication Service Providers 

► Need harmonised rules to ensure a smooth functioning of internal 
market 

♦ Users 

► Personal data needs to be protected and this calls for high standards 
to be applied in all Member States 

♦ End-to-end data retention process 

Key areas need to be carefully considered: purpose, period, 
authorities, procedures, arrangements for reimbursing operators 
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Utimaco LIMS & DRS 

The Utimaco Advantage 



♦ 

♦ 

♦ 

♦ 

♦ 



Experience 

Utimaco has been providing LI systems for more than 16 years to 150+ operators 
in more than 60 countries 

Expertise 

Utimaco actively cooperates with standardization bodies and equipment vendors to 
continuously adapt the Utimaco products to newest technical and regulatory requirements 

Compliance 

Utimaco LIMS + DRS complies with numerous national regulations and international 
technical standards for lawful interception 

Cost-efficiency 

The modular architecture of Utimaco LIMS and DRS enables cost-effective solutions 
for networks of any size 

Reliability 

Utimaco is a recognized global player and financially stable public company in the world- 
wide IT security industry. We support our customers in all technical and organizational 
aspects related to lawful interception 
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